IOS-XE GRE over IPSec VPN
GRE over IPSec VPN A GRE over IPSec VPN is a legacy solution that uses a crypto map to encrypt GRE traffic between two peer routers. GRE tunnels are required…
IOS-XE IKEv2 VRF aware Policy Based VPN
IOS-XE IKEv2 VRF aware Policy Based VPN This post describes the steps to configure a VRF aware Policy Based (Crypto Map) VPN on Cisco IOS-XE routers. A Front-door VRF called…
IOS-XE Remote Triggered Blackhole
IOS-XE Remote Triggered Blackhole Remotely Triggered Black Hole (RTBH) is a filtering technique that is used for mitigating Distributed Denial of Service (DDoS)/worm attacks and quarantine all traffic destined for…
IOS-XE Securing Management Plane
This post provides an overview of securing the management plane on Cisco routers/switches. Secure Passwords Create local passwords using a Type 8 or 9 password, by using secret keyword, which…
IOS-XE time-based ACL
IOS-XE Time based ACL Cisco IOS-XE routers and switches support applying extended Access Control Lists (ACL) based on the time/day of the connection. To have a consistent experience and the…
Securing IOS-XE Routing Protocols
Securing the routing information prevents an attacker from introducing false routing information into the network, which could be used as part of a Denial of Service (DoS) or Man-in-the-Middle (MiTM)…